2.16.106.168 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: European Union

Internet Service Provider: Akamai Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Content Delivery Network

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	12/09/2019-16:03:24.479288 2.16.106.168 Protocol: 6 SURICATA TLS invalid record/traffic	2019-12-10 01:24:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.16.106.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20341
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.16.106.168.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120901 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 01:23:53 CST 2019
;; MSG SIZE  rcvd: 116

Host info

168.106.16.2.in-addr.arpa domain name pointer a2-16-106-168.deploy.static.akamaitechnologies.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
168.106.16.2.in-addr.arpa	name = a2-16-106-168.deploy.static.akamaitechnologies.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.57.45.100	attackbots	Jun 25 20:12:25 srv-4 sshd\[1208\]: Invalid user admin from 197.57.45.100 Jun 25 20:12:25 srv-4 sshd\[1208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.57.45.100 Jun 25 20:12:26 srv-4 sshd\[1208\]: Failed password for invalid user admin from 197.57.45.100 port 34843 ssh2 ...	2019-06-26 07:26:56
114.232.134.203	attackbots	2019-06-25T19:01:55.015490 X postfix/smtpd[46620]: warning: unknown[114.232.134.203]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-25T19:06:31.197804 X postfix/smtpd[47610]: warning: unknown[114.232.134.203]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-25T19:12:33.324309 X postfix/smtpd[48229]: warning: unknown[114.232.134.203]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-26 07:24:09
61.91.34.38	attack	445/tcp 445/tcp 445/tcp... [2019-05-07/06-25]6pkt,1pt.(tcp)	2019-06-26 07:05:19
23.129.64.181	attackbotsspam	Automatic report - Web App Attack	2019-06-26 07:18:36
139.59.79.5	attackbotsspam	[munged]::80 139.59.79.5 - - [25/Jun/2019:21:42:31 +0200] "POST /[munged]: HTTP/1.1" 200 4660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 139.59.79.5 - - [25/Jun/2019:21:42:35 +0200] "POST /[munged]: HTTP/1.1" 200 4660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 139.59.79.5 - - [25/Jun/2019:21:42:35 +0200] "POST /[munged]: HTTP/1.1" 200 4660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 139.59.79.5 - - [25/Jun/2019:21:42:39 +0200] "POST /[munged]: HTTP/1.1" 200 4660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 139.59.79.5 - - [25/Jun/2019:21:42:39 +0200] "POST /[munged]: HTTP/1.1" 200 4660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::80 139.59.79.5 - - [25/Jun/2019:21:43:50 +0200] "POST /[munged]: HTTP/1.1" 200 4660 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64;	2019-06-26 07:10:03
195.154.199.185	attack	5061/udp 8080/udp 5070/udp... [2019-06-18/25]16pkt,3pt.(udp)	2019-06-26 07:37:30
59.90.32.83	attackspam	Honeypot attack, port: 445, PTR: static.pune.bb.59.90.32.83/24.bsnl.in.	2019-06-26 07:15:33
69.167.152.142	attackbotsspam	TCP src-port=49068 dst-port=25 dnsbl-sorbs abuseat-org spamcop (Project Honey Pot rated Suspicious) (1203)	2019-06-26 07:38:28
201.80.108.83	attackspam	Jun 26 01:40:28 mail sshd\[10036\]: Invalid user tiao from 201.80.108.83 Jun 26 01:40:28 mail sshd\[10036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.80.108.83 Jun 26 01:40:30 mail sshd\[10036\]: Failed password for invalid user tiao from 201.80.108.83 port 32004 ssh2 Jun 26 01:44:06 mail sshd\[10135\]: Invalid user oracle from 201.80.108.83 Jun 26 01:44:06 mail sshd\[10135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.80.108.83	2019-06-26 07:44:58
23.253.37.89	attackspambots	TCP src-port=37081 dst-port=25 dnsbl-sorbs abuseat-org barracuda (1210)	2019-06-26 07:15:11
89.64.14.213	attackspam	Mail sent to address hacked/leaked from atari.st	2019-06-26 07:12:14
175.126.123.151	attack	Spam Timestamp : 25-Jun-19 16:11 _ BlockList Provider combined abuse _ (1212)	2019-06-26 07:07:17
164.132.80.139	attackspam	Jun 25 23:07:10 vpn01 sshd\[9029\]: Invalid user test from 164.132.80.139 Jun 25 23:07:10 vpn01 sshd\[9029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.80.139 Jun 25 23:07:12 vpn01 sshd\[9029\]: Failed password for invalid user test from 164.132.80.139 port 60228 ssh2	2019-06-26 07:32:55
119.97.150.16	attackspam	Honeypot attack, port: 445, PTR: 16.150.97.119.broad.wh.hb.dynamic.163data.com.cn.	2019-06-26 07:22:50
189.204.131.149	attack	TCP src-port=40824 dst-port=25 dnsbl-sorbs abuseat-org barracuda (1209)	2019-06-26 07:18:19

Recently Reported IPs

37.55.204.218	127.162.239.45	213.110.230.18	58.33.11.82
187.170.31.196	106.217.77.148	122.4.232.246	114.124.211.202
103.210.247.205	20.56.202.68	130.156.59.98	98.155.54.80
254.186.144.237	3.253.118.201	202.74.78.103	13.77.160.251
59.127.228.147	222.112.57.6	111.42.103.19	189.79.255.85